11330154854

Committed 14 Oct 2024 03:01PM UTC coverage: 91.085% (-0.04%) from 91.12%

Build # 11330154854

Build Type

Pull #4291

github

Committed by

web-flow

Commit Message

Merge d4ad4e5b5 into ed74c9542

Pull Request Pull Request #4291: PQC: SLH-DSA

Run Details

90252 of 99086 relevant lines covered (91.08%)

9324125.38 hits per line

Source File
Press 'n' to go to next uncovered line, 'b' for previous

95.22

/src/lib/pubkey/pk_algs.cpp

/*
* PK Key
* (C) 1999-2010,2016 Jack Lloyd
*
* Botan is released under the Simplified BSD License (see license.txt)
*/

#include <botan/pk_algs.h>

#include <botan/internal/fmt.h>
#include <botan/internal/parsing.h>

#if defined(BOTAN_HAS_RSA)
   #include <botan/rsa.h>
#endif

#if defined(BOTAN_HAS_DSA)
   #include <botan/dsa.h>
#endif

#if defined(BOTAN_HAS_DL_GROUP)
   #include <botan/dl_group.h>
#endif

#if defined(BOTAN_HAS_DIFFIE_HELLMAN)
   #include <botan/dh.h>
#endif

#if defined(BOTAN_HAS_ECC_PUBLIC_KEY_CRYPTO)
   #include <botan/ecc_key.h>
#endif

#if defined(BOTAN_HAS_ECDSA)
   #include <botan/ecdsa.h>
#endif

#if defined(BOTAN_HAS_ECGDSA)
   #include <botan/ecgdsa.h>
#endif

#if defined(BOTAN_HAS_ECKCDSA)
   #include <botan/eckcdsa.h>
#endif

#if defined(BOTAN_HAS_ED25519)
   #include <botan/ed25519.h>
#endif

#if defined(BOTAN_HAS_ED448)
   #include <botan/ed448.h>
#endif

#if defined(BOTAN_HAS_GOST_34_10_2001)
   #include <botan/gost_3410.h>
#endif

#if defined(BOTAN_HAS_ELGAMAL)
   #include <botan/elgamal.h>
#endif

#if defined(BOTAN_HAS_ECDH)
   #include <botan/ecdh.h>
#endif

#if defined(BOTAN_HAS_X25519)
   #include <botan/x25519.h>
#endif

#if defined(BOTAN_HAS_X448)
   #include <botan/x448.h>
#endif

#if defined(BOTAN_HAS_MCELIECE)
   #include <botan/mceliece.h>
#endif

#if defined(BOTAN_HAS_FRODOKEM)
   #include <botan/frodokem.h>
#endif

#if defined(BOTAN_HAS_KYBER) || defined(BOTAN_HAS_KYBER_90S)
   #include <botan/kyber.h>
#endif

#if defined(BOTAN_HAS_HSS_LMS)
   #include <botan/hss_lms.h>
#endif

#if defined(BOTAN_HAS_XMSS_RFC8391)
   #include <botan/xmss.h>
#endif

#if defined(BOTAN_HAS_SM2)
   #include <botan/sm2.h>
#endif

#if defined(BOTAN_HAS_DILITHIUM) || defined(BOTAN_HAS_DILITHIUM_AES)
   #include <botan/dilithium.h>
#endif

#if defined(BOTAN_HAS_SPHINCS_PLUS_COMMON)
   #include <botan/sphincsplus.h>
#endif

namespace Botan {

std::unique_ptr<Public_Key> load_public_key(const AlgorithmIdentifier& alg_id,
                                            [[maybe_unused]] std::span<const uint8_t> key_bits) {
   const std::string oid_str = alg_id.oid().to_formatted_string();
   const std::vector<std::string> alg_info = split_on(oid_str, '/');
   std::string_view alg_name = alg_info[0];

#if defined(BOTAN_HAS_RSA)
   if(alg_name == "RSA") {
      return std::make_unique<RSA_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_X25519)
   if(alg_name == "X25519" || alg_name == "Curve25519") {
      return std::make_unique<X25519_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_X448)
   if(alg_name == "X448") {
      return std::make_unique<X448_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_MCELIECE)
   if(alg_name == "McEliece") {
      return std::make_unique<McEliece_PublicKey>(key_bits);
   }
#endif

#if defined(BOTAN_HAS_FRODOKEM)
   if(alg_name == "FrodoKEM" || alg_name.starts_with("FrodoKEM-") || alg_name.starts_with("eFrodoKEM-")) {
      return std::make_unique<FrodoKEM_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_KYBER) || defined(BOTAN_HAS_KYBER_90S)
   if(alg_name == "Kyber" || alg_name.starts_with("Kyber-")) {
      return std::make_unique<Kyber_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ECDSA)
   if(alg_name == "ECDSA") {
      return std::make_unique<ECDSA_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ECDH)
   if(alg_name == "ECDH") {
      return std::make_unique<ECDH_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_DIFFIE_HELLMAN)
   if(alg_name == "DH") {
      return std::make_unique<DH_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_DSA)
   if(alg_name == "DSA") {
      return std::make_unique<DSA_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ELGAMAL)
   if(alg_name == "ElGamal") {
      return std::make_unique<ElGamal_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ECGDSA)
   if(alg_name == "ECGDSA") {
      return std::make_unique<ECGDSA_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ECKCDSA)
   if(alg_name == "ECKCDSA") {
      return std::make_unique<ECKCDSA_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ED25519)
   if(alg_name == "Ed25519") {
      return std::make_unique<Ed25519_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ED448)
   if(alg_name == "Ed448") {
      return std::make_unique<Ed448_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_GOST_34_10_2001)
   if(alg_name == "GOST-34.10" || alg_name == "GOST-34.10-2012-256" || alg_name == "GOST-34.10-2012-512") {
      return std::make_unique<GOST_3410_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_SM2)
   if(alg_name == "SM2" || alg_name == "SM2_Sig" || alg_name == "SM2_Enc") {
      return std::make_unique<SM2_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_XMSS_RFC8391)
   if(alg_name == "XMSS") {
      return std::make_unique<XMSS_PublicKey>(key_bits);
   }
#endif

#if defined(BOTAN_HAS_DILITHIUM) || defined(BOTAN_HAS_DILITHIUM_AES)
   if(alg_name == "Dilithium" || alg_name.starts_with("Dilithium-")) {
      return std::make_unique<Dilithium_PublicKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_HSS_LMS)
   if(alg_name == "HSS-LMS") {
      return std::make_unique<HSS_LMS_PublicKey>(key_bits);
   }
#endif

#if defined(BOTAN_HAS_SPHINCS_PLUS_COMMON)
   if(alg_name == "SPHINCS+" || alg_name.starts_with("SphincsPlus-") || alg_name.starts_with("SLH-DSA-") ||
      alg_name.starts_with("Hash-SLH-DSA-")) {
      return std::make_unique<SphincsPlus_PublicKey>(alg_id, key_bits);
   }
#endif

   throw Decoding_Error(fmt("Unknown or unavailable public key algorithm '{}'", alg_name));
}

std::unique_ptr<Private_Key> load_private_key(const AlgorithmIdentifier& alg_id,
                                              [[maybe_unused]] std::span<const uint8_t> key_bits) {
   const std::string oid_str = alg_id.oid().to_formatted_string();
   const std::vector<std::string> alg_info = split_on(oid_str, '/');
   std::string_view alg_name = alg_info[0];

#if defined(BOTAN_HAS_RSA)
   if(alg_name == "RSA") {
      return std::make_unique<RSA_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_X25519)
   if(alg_name == "X25519" || alg_name == "Curve25519") {
      return std::make_unique<X25519_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_X448)
   if(alg_name == "X448") {
      return std::make_unique<X448_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ECDSA)
   if(alg_name == "ECDSA") {
      return std::make_unique<ECDSA_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ECDH)
   if(alg_name == "ECDH") {
      return std::make_unique<ECDH_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_DIFFIE_HELLMAN)
   if(alg_name == "DH") {
      return std::make_unique<DH_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_DSA)
   if(alg_name == "DSA") {
      return std::make_unique<DSA_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_FRODOKEM)
   if(alg_name == "FrodoKEM" || alg_name.starts_with("FrodoKEM-") || alg_name.starts_with("eFrodoKEM-")) {
      return std::make_unique<FrodoKEM_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_KYBER) || defined(BOTAN_HAS_KYBER_90S)
   if(alg_name == "Kyber" || alg_name.starts_with("Kyber-")) {
      return std::make_unique<Kyber_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_MCELIECE)
   if(alg_name == "McEliece") {
      return std::make_unique<McEliece_PrivateKey>(key_bits);
   }
#endif

#if defined(BOTAN_HAS_ECGDSA)
   if(alg_name == "ECGDSA") {
      return std::make_unique<ECGDSA_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ECKCDSA)
   if(alg_name == "ECKCDSA") {
      return std::make_unique<ECKCDSA_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ED25519)
   if(alg_name == "Ed25519") {
      return std::make_unique<Ed25519_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ED448)
   if(alg_name == "Ed448") {
      return std::make_unique<Ed448_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_GOST_34_10_2001)
   if(alg_name == "GOST-34.10" || alg_name == "GOST-34.10-2012-256" || alg_name == "GOST-34.10-2012-512") {
      return std::make_unique<GOST_3410_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_SM2)
   if(alg_name == "SM2" || alg_name == "SM2_Sig" || alg_name == "SM2_Enc") {
      return std::make_unique<SM2_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_ELGAMAL)
   if(alg_name == "ElGamal") {
      return std::make_unique<ElGamal_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_XMSS_RFC8391)
   if(alg_name == "XMSS") {
      return std::make_unique<XMSS_PrivateKey>(key_bits);
   }
#endif

#if defined(BOTAN_HAS_DILITHIUM) || defined(BOTAN_HAS_DILITHIUM_AES)
   if(alg_name == "Dilithium" || alg_name.starts_with("Dilithium-")) {
      return std::make_unique<Dilithium_PrivateKey>(alg_id, key_bits);
   }
#endif

#if defined(BOTAN_HAS_HSS_LMS)
   if(alg_name == "HSS-LMS-Private-Key") {
      return std::make_unique<HSS_LMS_PrivateKey>(key_bits);
   }
#endif

#if defined(BOTAN_HAS_SPHINCS_PLUS_COMMON)
   if(alg_name == "SPHINCS+" || alg_name.starts_with("SphincsPlus-") || alg_name.starts_with("SLH-DSA-") ||
      alg_name.starts_with("Hash-SLH-DSA-")) {
      return std::make_unique<SphincsPlus_PrivateKey>(alg_id, key_bits);
   }
#endif

   throw Decoding_Error(fmt("Unknown or unavailable public key algorithm '{}'", alg_name));
}

std::unique_ptr<Private_Key> create_ec_private_key(std::string_view alg_name,
                                                   const EC_Group& ec_group,
                                                   RandomNumberGenerator& rng) {
   // Potentially unused if all EC algorithms are disabled
   BOTAN_UNUSED(alg_name, ec_group, rng);

#if defined(BOTAN_HAS_ECDSA)
   if(alg_name == "ECDSA") {
      return std::make_unique<ECDSA_PrivateKey>(rng, ec_group);
   }
#endif

#if defined(BOTAN_HAS_ECDH)
   if(alg_name == "ECDH") {
      return std::make_unique<ECDH_PrivateKey>(rng, ec_group);
   }
#endif

#if defined(BOTAN_HAS_ECKCDSA)
   if(alg_name == "ECKCDSA") {
      return std::make_unique<ECKCDSA_PrivateKey>(rng, ec_group);
   }
#endif

#if defined(BOTAN_HAS_GOST_34_10_2001)
   if(alg_name == "GOST-34.10" || alg_name == "GOST-34.10-2012-256" || alg_name == "GOST-34.10-2012-512") {
      return std::make_unique<GOST_3410_PrivateKey>(rng, ec_group);
   }
#endif

#if defined(BOTAN_HAS_SM2)
   if(alg_name == "SM2" || alg_name == "SM2_Sig" || alg_name == "SM2_Enc") {
      return std::make_unique<SM2_PrivateKey>(rng, ec_group);
   }
#endif

#if defined(BOTAN_HAS_ECGDSA)
   if(alg_name == "ECGDSA") {
      return std::make_unique<ECGDSA_PrivateKey>(rng, ec_group);
   }
#endif

   return nullptr;
}

std::unique_ptr<Private_Key> create_private_key(std::string_view alg_name,
                                                RandomNumberGenerator& rng,
                                                std::string_view params,
                                                std::string_view provider) {
   /*
   * Default paramaters are chosen for work factor > 2**128 where possible
   */

#if defined(BOTAN_HAS_X25519)
   if(alg_name == "X25519" || alg_name == "Curve25519") {
      return std::make_unique<X25519_PrivateKey>(rng);
   }
#endif

#if defined(BOTAN_HAS_X448)
   if(alg_name == "X448") {
      return std::make_unique<X448_PrivateKey>(rng);
   }
#endif

#if defined(BOTAN_HAS_RSA)
   if(alg_name == "RSA") {
      const size_t modulus_bits = params.empty() ? 3072 : to_u32bit(params);
      return std::make_unique<RSA_PrivateKey>(rng, modulus_bits);
   }
#endif

#if defined(BOTAN_HAS_MCELIECE)
   if(alg_name == "McEliece") {
      const auto [n, t] = [&]() -> std::pair<size_t, size_t> {
         if(params.empty()) {
            return {2960, 57};
         }

         const auto mce_params = split_on(params, ',');

         if(mce_params.size() != 2) {
            throw Invalid_Argument(fmt("create_private_key: invalid McEliece parameters '{}'", params));
         }

         const size_t mce_n = to_u32bit(mce_params[0]);
         const size_t mce_t = to_u32bit(mce_params[1]);
         return {mce_n, mce_t};
      }();

      return std::make_unique<McEliece_PrivateKey>(rng, n, t);
   }
#endif

#if defined(BOTAN_HAS_FRODOKEM)
   if(alg_name == "FrodoKEM") {
      const auto mode = params.empty() ? FrodoKEMMode::FrodoKEM976_SHAKE : FrodoKEMMode(params);
      return std::make_unique<FrodoKEM_PrivateKey>(rng, mode);
   }
#endif

#if defined(BOTAN_HAS_KYBER) || defined(BOTAN_HAS_KYBER_90S)
   if(alg_name == "Kyber") {
      const auto mode = [&]() -> KyberMode {
         if(params.empty()) {
            return KyberMode::Kyber1024_R3;
         }
         return KyberMode(params);
      }();

      return std::make_unique<Kyber_PrivateKey>(rng, mode);
   }
#endif

#if defined(BOTAN_HAS_DILITHIUM) || defined(BOTAN_HAS_DILITHIUM_AES)
   if(alg_name == "Dilithium" || alg_name == "Dilithium-") {
      const auto mode = [&]() -> DilithiumMode {
         if(params.empty()) {
            return DilithiumMode::Dilithium6x5;
         }
         return DilithiumMode(params);
      }();

      return std::make_unique<Dilithium_PrivateKey>(rng, mode);
   }
#endif

#if defined(BOTAN_HAS_HSS_LMS)
   if(alg_name == "HSS-LMS") {
      return std::make_unique<HSS_LMS_PrivateKey>(rng, params);
   }
#endif

#if defined(BOTAN_HAS_SPHINCS_PLUS_COMMON)
   if(alg_name == "SPHINCS+" || alg_name == "SphincsPlus" || alg_name == "SLH-DSA") {
      auto sphincs_params = Sphincs_Parameters::create(params);

      return std::make_unique<SphincsPlus_PrivateKey>(rng, sphincs_params);
   }
#endif

#if defined(BOTAN_HAS_XMSS_RFC8391)
   if(alg_name == "XMSS") {
      const auto xmss_oid = [&]() -> XMSS_Parameters::xmss_algorithm_t {
         if(params.empty()) {
            return XMSS_Parameters::XMSS_SHA2_10_512;
         }
         return XMSS_Parameters(params).oid();
      }();

      return std::make_unique<XMSS_PrivateKey>(xmss_oid, rng);
   }
#endif

#if defined(BOTAN_HAS_ED25519)
   if(alg_name == "Ed25519") {
      return std::make_unique<Ed25519_PrivateKey>(rng);
   }
#endif

#if defined(BOTAN_HAS_ED448)
   if(alg_name == "Ed448") {
      return std::make_unique<Ed448_PrivateKey>(rng);
   }
#endif

   // ECC crypto
#if defined(BOTAN_HAS_ECC_PUBLIC_KEY_CRYPTO)

   if(alg_name == "ECDSA" || alg_name == "ECDH" || alg_name == "ECKCDSA" || alg_name == "ECGDSA" || alg_name == "SM2" ||
      alg_name == "SM2_Sig" || alg_name == "SM2_Enc" || alg_name == "GOST-34.10" || alg_name == "GOST-34.10-2012-256" ||
      alg_name == "GOST-34.10-2012-512") {
      const std::string group_id = [&]() -> std::string {
         if(!params.empty()) {
            return std::string(params);
         }
         if(alg_name == "SM2" || alg_name == "SM2_Enc" || alg_name == "SM2_Sig") {
            return "sm2p256v1";
         }
         if(alg_name == "GOST-34.10" || alg_name == "GOST-34.10-2012-256") {
            return "gost_256A";
         }
         if(alg_name == "GOST-34.10-2012-512") {
            return "gost_512A";
         }
         if(alg_name == "ECGDSA") {
            return "brainpool256r1";
         }
         return "secp256r1";
      }();

      auto ec_group = EC_Group::from_name(group_id);
      return create_ec_private_key(alg_name, ec_group, rng);
   }
#endif

   // DL crypto
#if defined(BOTAN_HAS_DL_GROUP)
   if(alg_name == "DH" || alg_name == "DSA" || alg_name == "ElGamal") {
      const std::string group_id = [&]() -> std::string {
         if(!params.empty()) {
            return std::string(params);
         }
         if(alg_name == "DSA") {
            return "dsa/botan/2048";
         }
         return "modp/ietf/2048";
      }();

      DL_Group modp_group(group_id);

   #if defined(BOTAN_HAS_DIFFIE_HELLMAN)
      if(alg_name == "DH") {
         return std::make_unique<DH_PrivateKey>(rng, modp_group);
      }
   #endif

   #if defined(BOTAN_HAS_DSA)
      if(alg_name == "DSA") {
         return std::make_unique<DSA_PrivateKey>(rng, modp_group);
      }
   #endif

   #if defined(BOTAN_HAS_ELGAMAL)
      if(alg_name == "ElGamal") {
         return std::make_unique<ElGamal_PrivateKey>(rng, modp_group);
      }
   #endif
   }
#endif

   BOTAN_UNUSED(alg_name, rng, params, provider);

   return std::unique_ptr<Private_Key>();
}

std::vector<std::string> probe_provider_private_key(std::string_view alg_name,
                                                    const std::vector<std::string>& possible) {
   std::vector<std::string> providers;

   for(auto&& prov : possible) {
      if(prov == "base") {
         providers.push_back(prov);
      }
   }

   BOTAN_UNUSED(alg_name);

   return providers;
}
}  // namespace Botan

1	/*
2	* PK Key
3	* (C) 1999-2010,2016 Jack Lloyd
4	*
5	* Botan is released under the Simplified BSD License (see license.txt)
6	*/
7
8	#include <botan/pk_algs.h>
9
10	#include <botan/internal/fmt.h>
11	#include <botan/internal/parsing.h>
12
13	#if defined(BOTAN_HAS_RSA)
14	#include <botan/rsa.h>
15	#endif
16
17	#if defined(BOTAN_HAS_DSA)
18	#include <botan/dsa.h>
19	#endif
20
21	#if defined(BOTAN_HAS_DL_GROUP)
22	#include <botan/dl_group.h>
23	#endif
24
25	#if defined(BOTAN_HAS_DIFFIE_HELLMAN)
26	#include <botan/dh.h>
27	#endif
28
29	#if defined(BOTAN_HAS_ECC_PUBLIC_KEY_CRYPTO)
30	#include <botan/ecc_key.h>
31	#endif
32
33	#if defined(BOTAN_HAS_ECDSA)
34	#include <botan/ecdsa.h>
35	#endif
36
37	#if defined(BOTAN_HAS_ECGDSA)
38	#include <botan/ecgdsa.h>
39	#endif
40
41	#if defined(BOTAN_HAS_ECKCDSA)
42	#include <botan/eckcdsa.h>
43	#endif
44
45	#if defined(BOTAN_HAS_ED25519)
46	#include <botan/ed25519.h>
47	#endif
48
49	#if defined(BOTAN_HAS_ED448)
50	#include <botan/ed448.h>
51	#endif
52
53	#if defined(BOTAN_HAS_GOST_34_10_2001)
54	#include <botan/gost_3410.h>
55	#endif
56
57	#if defined(BOTAN_HAS_ELGAMAL)
58	#include <botan/elgamal.h>
59	#endif
60
61	#if defined(BOTAN_HAS_ECDH)
62	#include <botan/ecdh.h>
63	#endif
64
65	#if defined(BOTAN_HAS_X25519)
66	#include <botan/x25519.h>
67	#endif
68
69	#if defined(BOTAN_HAS_X448)
70	#include <botan/x448.h>
71	#endif
72
73	#if defined(BOTAN_HAS_MCELIECE)
74	#include <botan/mceliece.h>
75	#endif
76
77	#if defined(BOTAN_HAS_FRODOKEM)
78	#include <botan/frodokem.h>
79	#endif
80
81	#if defined(BOTAN_HAS_KYBER) \|\| defined(BOTAN_HAS_KYBER_90S)
82	#include <botan/kyber.h>
83	#endif
84
85	#if defined(BOTAN_HAS_HSS_LMS)
86	#include <botan/hss_lms.h>
87	#endif
88
89	#if defined(BOTAN_HAS_XMSS_RFC8391)
90	#include <botan/xmss.h>
91	#endif
92
93	#if defined(BOTAN_HAS_SM2)
94	#include <botan/sm2.h>
95	#endif
96
97	#if defined(BOTAN_HAS_DILITHIUM) \|\| defined(BOTAN_HAS_DILITHIUM_AES)
98	#include <botan/dilithium.h>
99	#endif
100
101	#if defined(BOTAN_HAS_SPHINCS_PLUS_COMMON)
102	#include <botan/sphincsplus.h>
103	#endif
104
105	namespace Botan {
106
107	std::unique_ptr<Public_Key> load_public_key(const AlgorithmIdentifier& alg_id,	22,156✔
108	[[maybe_unused]] std::span<const uint8_t> key_bits) {
109	const std::string oid_str = alg_id.oid().to_formatted_string();	22,156✔
110	const std::vector<std::string> alg_info = split_on(oid_str, '/');	22,156✔
111	std::string_view alg_name = alg_info[0];	22,156✔
112
113	#if defined(BOTAN_HAS_RSA)
114	if(alg_name == "RSA") {	22,156✔
115	return std::make_unique<RSA_PublicKey>(alg_id, key_bits);	32,029✔
116	}
117	#endif
118
119	#if defined(BOTAN_HAS_X25519)
120	if(alg_name == "X25519" \|\| alg_name == "Curve25519") {	5,827✔
121	return std::make_unique<X25519_PublicKey>(alg_id, key_bits);	48✔
122	}
123	#endif
124
125	#if defined(BOTAN_HAS_X448)
126	if(alg_name == "X448") {	5,706✔
127	return std::make_unique<X448_PublicKey>(alg_id, key_bits);	4✔
128	}
129	#endif
130
131	#if defined(BOTAN_HAS_MCELIECE)
132	if(alg_name == "McEliece") {	5,704✔
133	return std::make_unique<McEliece_PublicKey>(key_bits);	2✔
134	}
135	#endif
136
137	#if defined(BOTAN_HAS_FRODOKEM)
138	if(alg_name == "FrodoKEM" \|\| alg_name.starts_with("FrodoKEM-") \|\| alg_name.starts_with("eFrodoKEM-")) {	5,704✔
139	return std::make_unique<FrodoKEM_PublicKey>(alg_id, key_bits);	632✔
140	}
141	#endif
142
143	#if defined(BOTAN_HAS_KYBER) \|\| defined(BOTAN_HAS_KYBER_90S)
144	if(alg_name == "Kyber" \|\| alg_name.starts_with("Kyber-")) {	9,057✔
145	return std::make_unique<Kyber_PublicKey>(alg_id, key_bits);	328✔
146	}
147	#endif
148
149	#if defined(BOTAN_HAS_ECDSA)
150	if(alg_name == "ECDSA") {	5,223✔
151	return std::make_unique<ECDSA_PublicKey>(alg_id, key_bits);	7,015✔
152	}
153	#endif
154
155	#if defined(BOTAN_HAS_ECDH)
156	if(alg_name == "ECDH") {	1,627✔
157	return std::make_unique<ECDH_PublicKey>(alg_id, key_bits);	33✔
158	}
159	#endif
160
161	#if defined(BOTAN_HAS_DIFFIE_HELLMAN)
162	if(alg_name == "DH") {	1,610✔
163	return std::make_unique<DH_PublicKey>(alg_id, key_bits);	11✔
164	}
165	#endif
166
167	#if defined(BOTAN_HAS_DSA)
168	if(alg_name == "DSA") {	1,602✔
169	return std::make_unique<DSA_PublicKey>(alg_id, key_bits);	355✔
170	}
171	#endif
172
173	#if defined(BOTAN_HAS_ELGAMAL)
174	if(alg_name == "ElGamal") {	1,368✔
175	return std::make_unique<ElGamal_PublicKey>(alg_id, key_bits);	8✔
176	}
177	#endif
178
179	#if defined(BOTAN_HAS_ECGDSA)
180	if(alg_name == "ECGDSA") {	1,364✔
181	return std::make_unique<ECGDSA_PublicKey>(alg_id, key_bits);	146✔
182	}
183	#endif
184
185	#if defined(BOTAN_HAS_ECKCDSA)
186	if(alg_name == "ECKCDSA") {	1,291✔
187	return std::make_unique<ECKCDSA_PublicKey>(alg_id, key_bits);	144✔
188	}
189	#endif
190
191	#if defined(BOTAN_HAS_ED25519)
192	if(alg_name == "Ed25519") {	1,219✔
193	return std::make_unique<Ed25519_PublicKey>(alg_id, key_bits);	1,528✔
194	}
195	#endif
196
197	#if defined(BOTAN_HAS_ED448)
198	if(alg_name == "Ed448") {	455✔
199	return std::make_unique<Ed448_PublicKey>(alg_id, key_bits);	146✔
200	}
201	#endif
202
203	#if defined(BOTAN_HAS_GOST_34_10_2001)
204	if(alg_name == "GOST-34.10" \|\| alg_name == "GOST-34.10-2012-256" \|\| alg_name == "GOST-34.10-2012-512") {	454✔
205	return std::make_unique<GOST_3410_PublicKey>(alg_id, key_bits);	132✔
206	}
207	#endif
208
209	#if defined(BOTAN_HAS_SM2)
210	if(alg_name == "SM2" \|\| alg_name == "SM2_Sig" \|\| alg_name == "SM2_Enc") {	384✔
211	return std::make_unique<SM2_PublicKey>(alg_id, key_bits);	30✔
212	}
213	#endif
214
215	#if defined(BOTAN_HAS_XMSS_RFC8391)
216	if(alg_name == "XMSS") {	301✔
217	return std::make_unique<XMSS_PublicKey>(key_bits);	88✔
218	}
219	#endif
220
221	#if defined(BOTAN_HAS_DILITHIUM) \|\| defined(BOTAN_HAS_DILITHIUM_AES)
222	if(alg_name == "Dilithium" \|\| alg_name.starts_with("Dilithium-")) {	259✔
223	return std::make_unique<Dilithium_PublicKey>(alg_id, key_bits);	168✔
224	}
225	#endif
226
227	#if defined(BOTAN_HAS_HSS_LMS)
228	if(alg_name == "HSS-LMS") {	173✔
229	return std::make_unique<HSS_LMS_PublicKey>(key_bits);	106✔
230	}
231	#endif
232
233	#if defined(BOTAN_HAS_SPHINCS_PLUS_COMMON)
234	if(alg_name == "SPHINCS+" \|\| alg_name.starts_with("SphincsPlus-") \|\| alg_name.starts_with("SLH-DSA-") \|\|	175✔
235	alg_name.starts_with("Hash-SLH-DSA-")) {	54✔
236	return std::make_unique<SphincsPlus_PublicKey>(alg_id, key_bits);	132✔
237	}
238	#endif
239
240	throw Decoding_Error(fmt("Unknown or unavailable public key algorithm '{}'", alg_name));	108✔
241	}	22,156✔
242
243	std::unique_ptr<Private_Key> load_private_key(const AlgorithmIdentifier& alg_id,	4,744✔
244	[[maybe_unused]] std::span<const uint8_t> key_bits) {
245	const std::string oid_str = alg_id.oid().to_formatted_string();	4,744✔
246	const std::vector<std::string> alg_info = split_on(oid_str, '/');	4,744✔
247	std::string_view alg_name = alg_info[0];	4,744✔
248
249	#if defined(BOTAN_HAS_RSA)
250	if(alg_name == "RSA") {	4,744✔
251	return std::make_unique<RSA_PrivateKey>(alg_id, key_bits);	2,086✔
252	}
253	#endif
254
255	#if defined(BOTAN_HAS_X25519)
256	if(alg_name == "X25519" \|\| alg_name == "Curve25519") {	2,704✔
257	return std::make_unique<X25519_PrivateKey>(alg_id, key_bits);	54✔
258	}
259	#endif
260
261	#if defined(BOTAN_HAS_X448)
262	if(alg_name == "X448") {	2,630✔
263	return std::make_unique<X448_PrivateKey>(alg_id, key_bits);	12✔
264	}
265	#endif
266
267	#if defined(BOTAN_HAS_ECDSA)
268	if(alg_name == "ECDSA") {	2,624✔
269	return std::make_unique<ECDSA_PrivateKey>(alg_id, key_bits);	1,528✔
270	}
271	#endif
272
273	#if defined(BOTAN_HAS_ECDH)
274	if(alg_name == "ECDH") {	1,424✔
275	return std::make_unique<ECDH_PrivateKey>(alg_id, key_bits);	184✔
276	}
277	#endif
278
279	#if defined(BOTAN_HAS_DIFFIE_HELLMAN)
280	if(alg_name == "DH") {	1,302✔
281	return std::make_unique<DH_PrivateKey>(alg_id, key_bits);	67✔
282	}
283	#endif
284
285	#if defined(BOTAN_HAS_DSA)
286	if(alg_name == "DSA") {	1,262✔
287	return std::make_unique<DSA_PrivateKey>(alg_id, key_bits);	373✔
288	}
289	#endif
290
291	#if defined(BOTAN_HAS_FRODOKEM)
292	if(alg_name == "FrodoKEM" \|\| alg_name.starts_with("FrodoKEM-") \|\| alg_name.starts_with("eFrodoKEM-")) {	950✔
293	return std::make_unique<FrodoKEM_PrivateKey>(alg_id, key_bits);	348✔
294	}
295	#endif
296
297	#if defined(BOTAN_HAS_KYBER) \|\| defined(BOTAN_HAS_KYBER_90S)
298	if(alg_name == "Kyber" \|\| alg_name.starts_with("Kyber-")) {	616✔
299	return std::make_unique<Kyber_PrivateKey>(alg_id, key_bits);	211✔
300	}
301	#endif
302
303	#if defined(BOTAN_HAS_MCELIECE)
304	if(alg_name == "McEliece") {	387✔
305	return std::make_unique<McEliece_PrivateKey>(key_bits);	4✔
306	}
307	#endif
308
309	#if defined(BOTAN_HAS_ECGDSA)
310	if(alg_name == "ECGDSA") {	383✔
311	return std::make_unique<ECGDSA_PrivateKey>(alg_id, key_bits);	36✔
312	}
313	#endif
314
315	#if defined(BOTAN_HAS_ECKCDSA)
316	if(alg_name == "ECKCDSA") {	365✔
317	return std::make_unique<ECKCDSA_PrivateKey>(alg_id, key_bits);	36✔
318	}
319	#endif
320
321	#if defined(BOTAN_HAS_ED25519)
322	if(alg_name == "Ed25519") {	347✔
323	return std::make_unique<Ed25519_PrivateKey>(alg_id, key_bits);	17✔
324	}
325	#endif
326
327	#if defined(BOTAN_HAS_ED448)
328	if(alg_name == "Ed448") {	337✔
329	return std::make_unique<Ed448_PrivateKey>(alg_id, key_bits);	36✔
330	}
331	#endif
332
333	#if defined(BOTAN_HAS_GOST_34_10_2001)
334	if(alg_name == "GOST-34.10" \|\| alg_name == "GOST-34.10-2012-256" \|\| alg_name == "GOST-34.10-2012-512") {	340✔
335	return std::make_unique<GOST_3410_PrivateKey>(alg_id, key_bits);	24✔
336	}
337	#endif
338
339	#if defined(BOTAN_HAS_SM2)
340	if(alg_name == "SM2" \|\| alg_name == "SM2_Sig" \|\| alg_name == "SM2_Enc") {	341✔
341	return std::make_unique<SM2_PrivateKey>(alg_id, key_bits);	40✔
342	}
343	#endif
344
345	#if defined(BOTAN_HAS_ELGAMAL)
346	if(alg_name == "ElGamal") {	287✔
347	return std::make_unique<ElGamal_PrivateKey>(alg_id, key_bits);	28✔
348	}
349	#endif
350
351	#if defined(BOTAN_HAS_XMSS_RFC8391)
352	if(alg_name == "XMSS") {	273✔
353	return std::make_unique<XMSS_PrivateKey>(key_bits);	19✔
354	}
355	#endif
356
357	#if defined(BOTAN_HAS_DILITHIUM) \|\| defined(BOTAN_HAS_DILITHIUM_AES)
358	if(alg_name == "Dilithium" \|\| alg_name.starts_with("Dilithium-")) {	264✔
359	return std::make_unique<Dilithium_PrivateKey>(alg_id, key_bits);	55✔
360	}
361	#endif
362
363	#if defined(BOTAN_HAS_HSS_LMS)
364	if(alg_name == "HSS-LMS-Private-Key") {	199✔
365	return std::make_unique<HSS_LMS_PrivateKey>(key_bits);	6✔
366	}
367	#endif
368
369	#if defined(BOTAN_HAS_SPHINCS_PLUS_COMMON)
370	if(alg_name == "SPHINCS+" \|\| alg_name.starts_with("SphincsPlus-") \|\| alg_name.starts_with("SLH-DSA-") \|\|	242✔
371	alg_name.starts_with("Hash-SLH-DSA-")) {	49✔
372	return std::make_unique<SphincsPlus_PrivateKey>(alg_id, key_bits);	144✔
373	}
374	#endif
375
376	throw Decoding_Error(fmt("Unknown or unavailable public key algorithm '{}'", alg_name));	98✔
377	}	4,744✔
378
379	std::unique_ptr<Private_Key> create_ec_private_key(std::string_view alg_name,	157✔
380	const EC_Group& ec_group,
381	RandomNumberGenerator& rng) {
382	// Potentially unused if all EC algorithms are disabled
383	BOTAN_UNUSED(alg_name, ec_group, rng);	157✔
384
385	#if defined(BOTAN_HAS_ECDSA)
386	if(alg_name == "ECDSA") {	157✔
387	return std::make_unique<ECDSA_PrivateKey>(rng, ec_group);	144✔
388	}
389	#endif
390
391	#if defined(BOTAN_HAS_ECDH)
392	if(alg_name == "ECDH") {	85✔
393	return std::make_unique<ECDH_PrivateKey>(rng, ec_group);	58✔
394	}
395	#endif
396
397	#if defined(BOTAN_HAS_ECKCDSA)
398	if(alg_name == "ECKCDSA") {	56✔
399	return std::make_unique<ECKCDSA_PrivateKey>(rng, ec_group);	36✔
400	}
401	#endif
402
403	#if defined(BOTAN_HAS_GOST_34_10_2001)
404	if(alg_name == "GOST-34.10" \|\| alg_name == "GOST-34.10-2012-256" \|\| alg_name == "GOST-34.10-2012-512") {	50✔
405	return std::make_unique<GOST_3410_PrivateKey>(rng, ec_group);	24✔
406	}
407	#endif
408
409	#if defined(BOTAN_HAS_SM2)
410	if(alg_name == "SM2" \|\| alg_name == "SM2_Sig" \|\| alg_name == "SM2_Enc") {	35✔
411	return std::make_unique<SM2_PrivateKey>(rng, ec_group);	16✔
412	}
413	#endif
414
415	#if defined(BOTAN_HAS_ECGDSA)
416	if(alg_name == "ECGDSA") {	18✔
417	return std::make_unique<ECGDSA_PrivateKey>(rng, ec_group);	36✔
418	}
419	#endif
420
421	return nullptr;	×
422	}
423
424	std::unique_ptr<Private_Key> create_private_key(std::string_view alg_name,	849✔
425	RandomNumberGenerator& rng,
426	std::string_view params,
427	std::string_view provider) {
428	/*
429	* Default paramaters are chosen for work factor > 2**128 where possible
430	*/
431
432	#if defined(BOTAN_HAS_X25519)
433	if(alg_name == "X25519" \|\| alg_name == "Curve25519") {	875✔
434	return std::make_unique<X25519_PrivateKey>(rng);	16✔
435	}
436	#endif
437
438	#if defined(BOTAN_HAS_X448)
439	if(alg_name == "X448") {	841✔
440	return std::make_unique<X448_PrivateKey>(rng);	10✔
441	}
442	#endif
443
444	#if defined(BOTAN_HAS_RSA)
445	if(alg_name == "RSA") {	836✔
446	const size_t modulus_bits = params.empty() ? 3072 : to_u32bit(params);	51✔
447	return std::make_unique<RSA_PrivateKey>(rng, modulus_bits);	51✔
448	}
449	#endif
450
451	#if defined(BOTAN_HAS_MCELIECE)
452	if(alg_name == "McEliece") {	785✔
453	const auto [n, t] = [&]() -> std::pair<size_t, size_t> {	2✔
454	if(params.empty()) {	2✔
455	return {2960, 57};	×
456	}
457
458	const auto mce_params = split_on(params, ',');	2✔
459
460	if(mce_params.size() != 2) {	2✔
461	throw Invalid_Argument(fmt("create_private_key: invalid McEliece parameters '{}'", params));	×
462	}
463
464	const size_t mce_n = to_u32bit(mce_params[0]);	2✔
465	const size_t mce_t = to_u32bit(mce_params[1]);	2✔
466	return {mce_n, mce_t};	2✔
467	}();	4✔
468
469	return std::make_unique<McEliece_PrivateKey>(rng, n, t);	2✔
470	}
471	#endif
472
473	#if defined(BOTAN_HAS_FRODOKEM)
474	if(alg_name == "FrodoKEM") {	783✔
475	const auto mode = params.empty() ? FrodoKEMMode::FrodoKEM976_SHAKE : FrodoKEMMode(params);	309✔
476	return std::make_unique<FrodoKEM_PrivateKey>(rng, mode);	309✔
477	}
478	#endif
479
480	#if defined(BOTAN_HAS_KYBER) \|\| defined(BOTAN_HAS_KYBER_90S)
481	if(alg_name == "Kyber") {	474✔
482	const auto mode = [&]() -> KyberMode {	504✔
483	if(params.empty()) {	168✔
484	return KyberMode::Kyber1024_R3;	1✔
485	}
486	return KyberMode(params);	167✔
487	}();	168✔
488
489	return std::make_unique<Kyber_PrivateKey>(rng, mode);	168✔
490	}
491	#endif
492
493	#if defined(BOTAN_HAS_DILITHIUM) \|\| defined(BOTAN_HAS_DILITHIUM_AES)
494	if(alg_name == "Dilithium" \|\| alg_name == "Dilithium-") {	331✔
495	const auto mode = [&]() -> DilithiumMode {	25✔
496	if(params.empty()) {	25✔
497	return DilithiumMode::Dilithium6x5;
498	}
499	return DilithiumMode(params);	17✔
500	}();	25✔
501
502	return std::make_unique<Dilithium_PrivateKey>(rng, mode);	25✔
503	}
504	#endif
505
506	#if defined(BOTAN_HAS_HSS_LMS)
507	if(alg_name == "HSS-LMS") {	281✔
508	return std::make_unique<HSS_LMS_PrivateKey>(rng, params);	15✔
509	}
510	#endif
511
512	#if defined(BOTAN_HAS_SPHINCS_PLUS_COMMON)
513	if(alg_name == "SPHINCS+" \|\| alg_name == "SphincsPlus" \|\| alg_name == "SLH-DSA") {	305✔
514	auto sphincs_params = Sphincs_Parameters::create(params);	39✔
515
516	return std::make_unique<SphincsPlus_PrivateKey>(rng, sphincs_params);	39✔
517	}
518	#endif
519
520	#if defined(BOTAN_HAS_XMSS_RFC8391)
521	if(alg_name == "XMSS") {	227✔
522	const auto xmss_oid = [&]() -> XMSS_Parameters::xmss_algorithm_t {	24✔
523	if(params.empty()) {	8✔
524	return XMSS_Parameters::XMSS_SHA2_10_512;
525	}
526	return XMSS_Parameters(params).oid();	14✔
527	}();	8✔
528
529	return std::make_unique<XMSS_PrivateKey>(xmss_oid, rng);	8✔
530	}
531	#endif
532
533	#if defined(BOTAN_HAS_ED25519)
534	if(alg_name == "Ed25519") {	219✔
535	return std::make_unique<Ed25519_PrivateKey>(rng);	26✔
536	}
537	#endif
538
539	#if defined(BOTAN_HAS_ED448)
540	if(alg_name == "Ed448") {	206✔
541	return std::make_unique<Ed448_PrivateKey>(rng);	26✔
542	}
543	#endif
544
545	// ECC crypto
546	#if defined(BOTAN_HAS_ECC_PUBLIC_KEY_CRYPTO)
547
548	if(alg_name == "ECDSA" \|\| alg_name == "ECDH" \|\| alg_name == "ECKCDSA" \|\| alg_name == "ECGDSA" \|\| alg_name == "SM2" \|\|	359✔
549	alg_name == "SM2_Sig" \|\| alg_name == "SM2_Enc" \|\| alg_name == "GOST-34.10" \|\| alg_name == "GOST-34.10-2012-256" \|\|	79✔
550	alg_name == "GOST-34.10-2012-512") {	36✔
551	const std::string group_id = [&]() -> std::string {	471✔
552	if(!params.empty()) {	157✔
553	return std::string(params);	148✔
554	}
555	if(alg_name == "SM2" \|\| alg_name == "SM2_Enc" \|\| alg_name == "SM2_Sig") {	9✔
556	return "sm2p256v1";	×
557	}
558	if(alg_name == "GOST-34.10" \|\| alg_name == "GOST-34.10-2012-256") {	9✔
559	return "gost_256A";	×
560	}
561	if(alg_name == "GOST-34.10-2012-512") {	9✔
562	return "gost_512A";	×
563	}
564	if(alg_name == "ECGDSA") {	9✔
565	return "brainpool256r1";	×
566	}
567	return "secp256r1";	9✔
568	}();	157✔
569
570	auto ec_group = EC_Group::from_name(group_id);	157✔
571	return create_ec_private_key(alg_name, ec_group, rng);	157✔
572	}	157✔
573	#endif
574
575	// DL crypto
576	#if defined(BOTAN_HAS_DL_GROUP)
577	if(alg_name == "DH" \|\| alg_name == "DSA" \|\| alg_name == "ElGamal") {	72✔
578	const std::string group_id = [&]() -> std::string {	108✔
579	if(!params.empty()) {	36✔
580	return std::string(params);	26✔
581	}
582	if(alg_name == "DSA") {	10✔
583	return "dsa/botan/2048";	8✔
584	}
585	return "modp/ietf/2048";	2✔
586	}();	36✔
587
588	DL_Group modp_group(group_id);	36✔
589
590	#if defined(BOTAN_HAS_DIFFIE_HELLMAN)
591	if(alg_name == "DH") {	36✔
592	return std::make_unique<DH_PrivateKey>(rng, modp_group);	30✔
593	}
594	#endif
595
596	#if defined(BOTAN_HAS_DSA)
597	if(alg_name == "DSA") {	21✔
598	return std::make_unique<DSA_PrivateKey>(rng, modp_group);	28✔
599	}
600	#endif
601
602	#if defined(BOTAN_HAS_ELGAMAL)
603	if(alg_name == "ElGamal") {	7✔
604	return std::make_unique<ElGamal_PrivateKey>(rng, modp_group);	14✔
605	}
606	#endif
607	}	36✔
608	#endif
609
610	BOTAN_UNUSED(alg_name, rng, params, provider);	×
611
612	return std::unique_ptr<Private_Key>();	×
613	}
614
615	std::vector<std::string> probe_provider_private_key(std::string_view alg_name,	104✔
616	const std::vector<std::string>& possible) {
617	std::vector<std::string> providers;	104✔
618
619	for(auto&& prov : possible) {	520✔
620	if(prov == "base") {	416✔
621	providers.push_back(prov);	104✔
622	}
623	}
624
625	BOTAN_UNUSED(alg_name);	104✔
626
627	return providers;	104✔
628	}	×
629	} // namespace Botan

randombit / botan / 11330154854

Source File Press 'n' to go to next uncovered line, 'b' for previous

Source File
Press 'n' to go to next uncovered line, 'b' for previous